Decimal Fields Right Boundary
| Item | Description |
|---|---|
| Full Fuzzer Name | DecimalFieldsRightBoundaryFuzzer |
| Log Key | DFRB |
| Description | This fuzzer will send right boundary values in decimal fields. The expectation is that APIs will reject the request as invalid, as the value is higher than it's maximum. |
| Enabled by default? | Yes |
| Target field types | OpenAPI type number |
| Expected result when fuzzed field is required | 4XX |
| Expected result when fuzzed field is optional | 4XX |
| Expected result when fuzzed value is not matching field pattern | 4XX |
| Fuzzing logic | Iteratively replaces number fields with right boundary values: if the field has a defined maximum the fuzzer will add 455553333.543543543to this value, otherwise if the field has format float it will use 3.4028235E38 - 1.4E-45, otherwise will use 1.7976931348623157E308 - 4.9E-324 |
| Conditions when this fuzzer will be skipped | When field is not of type number OR if field is ref data |
| HTTP methods that will be skipped | None |
| Reporting | Reports error if: 1. response code is 404; 2. response code is documented, but not expected; 3. any unexpected exception. Reports warn if: 1. response code is expected and documented, but not matches response schema; 2. response code is expected, but not documented; 3. response code is 501. Reports success if: 1. response code is expected, documented and matches response schema. |